Siemens Ruggedcom Crossbow — known CVE vulnerabilities
Every CVE whose affected-product data names Siemens Ruggedcom Crossbow, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (17)
CVE-2024-27939 — CVSS 9.8 (critical): A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow the upload of arbitrary files…
CVE-2023-37372 — CVSS 9.8 (critical): A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.4). The affected applications is vulnerable to SQL injection…
CVE-2024-27941 — CVSS 8.8 (high): A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected client systems do not properly sanitize input…
CVE-2023-27411 — CVSS 8.8 (high): A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.4). The affected applications is vulnerable to SQL injection…
CVE-2024-27940 — CVSS 8.8 (high): A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow any authenticated user to send…
CVE-2023-27463 — CVSS 8.8 (high): A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.3). The audit log form of affected applications is vulnerable…
CVE-2025-6965 — CVSS 7.7 (high): There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns…
CVE-2024-27942 — CVSS 7.5 (high): A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow any unauthenticated client to…
CVE-2024-27945 — CVSS 7.2 (high): A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The bulk import feature of the affected systems allow a…
CVE-2024-27943 — CVSS 7.2 (high): A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow a privileged user to upload…
CVE-2024-27944 — CVSS 7.2 (high): A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow a privileged user to upload…
CVE-2023-27310 — CVSS 6.6 (medium): A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.2). The client query handler of the affected application fails…
CVE-2024-27946 — CVSS 6.5 (medium): A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). Downloading files overwrites files with the same name in…
CVE-2023-37373 — CVSS 5.3 (medium): A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.4). The affected applications accept unauthenticated file…
CVE-2024-27947 — CVSS 5.3 (medium): A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems could allow log messages to be…
CVE-2023-27309 — CVSS 5.0 (medium): A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.2). The client query handler of the affected application fails…
CVE-2023-27462 — CVSS 3.1 (low): A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.3). The client query handler of the affected application fails…